diff options
| author | Paul Kehrer <paul.l.kehrer@gmail.com> | 2018-12-03 00:42:44 +0800 |
|---|---|---|
| committer | Alex Gaynor <alex.gaynor@gmail.com> | 2018-12-02 11:42:44 -0500 |
| commit | fec719b60441b1e69bcca26446b8025bb69ee1fd (patch) | |
| tree | 49bbd3ee94f5a9d202348e6f0803d5638ff12792 /tests/hazmat | |
| parent | 6d7b70e8f2da0da39f85fdc03d0a7e693351cc06 (diff) | |
| download | cryptography-fec719b60441b1e69bcca26446b8025bb69ee1fd.tar.gz cryptography-fec719b60441b1e69bcca26446b8025bb69ee1fd.tar.bz2 cryptography-fec719b60441b1e69bcca26446b8025bb69ee1fd.zip | |
encode IssuingDistributionPoint (#4618)
Diffstat (limited to 'tests/hazmat')
| -rw-r--r-- | tests/hazmat/backends/test_openssl_memleak.py | 45 |
1 files changed, 45 insertions, 0 deletions
diff --git a/tests/hazmat/backends/test_openssl_memleak.py b/tests/hazmat/backends/test_openssl_memleak.py index 6f42ed79..1db103b5 100644 --- a/tests/hazmat/backends/test_openssl_memleak.py +++ b/tests/hazmat/backends/test_openssl_memleak.py @@ -325,3 +325,48 @@ class TestOpenSSLMemoryLeaks(object): f.read(), b"cryptography", backend ) """), [path]) + + def test_create_crl_with_idp(self): + assert_no_memory_leaks(textwrap.dedent(""" + def func(): + import datetime + from cryptography import x509 + from cryptography.hazmat.backends.openssl import backend + from cryptography.hazmat.primitives import hashes + from cryptography.hazmat.primitives.asymmetric import ec + from cryptography.x509.oid import NameOID + + key = ec.generate_private_key(ec.SECP256R1(), backend) + last_update = datetime.datetime(2002, 1, 1, 12, 1) + next_update = datetime.datetime(2030, 1, 1, 12, 1) + idp = x509.IssuingDistributionPoint( + full_name=None, + relative_name=x509.RelativeDistinguishedName([ + x509.NameAttribute( + oid=x509.NameOID.ORGANIZATION_NAME, value=u"PyCA") + ]), + only_contains_user_certs=False, + only_contains_ca_certs=True, + only_some_reasons=None, + indirect_crl=False, + only_contains_attribute_certs=False, + ) + builder = x509.CertificateRevocationListBuilder().issuer_name( + x509.Name([ + x509.NameAttribute( + NameOID.COMMON_NAME, u"cryptography.io CA" + ) + ]) + ).last_update( + last_update + ).next_update( + next_update + ).add_extension( + idp, True + ) + + crl = builder.sign(key, hashes.SHA256(), backend) + crl.extensions.get_extension_for_class( + x509.IssuingDistributionPoint + ) + """)) |